151 matches found
CVE-2026-44963
A vulnerability allowing remote code execution RCE on the Backup Server by an authenticated domain user...
Veeam Backup & Replication’s vulnerability handling capabilities
Veeam has identified a vulnerability in Backup & Replication. This vulnerability allows an authenticated domain user to execute remote code on the Backup Server. As a result, an attacker with domain credentials can exploit this vulnerability to gain control over backup operations. This is a...
EUVD-2026-35868
A vulnerability allowing remote code execution RCE on the Backup Server by an authenticated domain user...
CVE-2026-44963
A vulnerability allowing remote code execution RCE on the Backup Server by an authenticated domain user...
CVE-2026-44963
CVE-2026-44963 is a confirmed issue in Veeam Backup & Replication where an authenticated domain user could trigger remote code execution on the Backup Server. Public docs indicate the vulnerability affects 12.x builds (including 12.3.2.4465) and is not present in version 13.x due to architectural...
CVE-2026-44963
A vulnerability allowing remote code execution RCE on the Backup Server by an authenticated domain user...
CVE-2026-44963
A vulnerability allowing remote code execution RCE on the Backup Server by an authenticated domain user...
PT-2026-47752
Name of the Vulnerable Software and Affected Versions Veeam Backup & Replication versions prior to 12.3.2.4854 Description A critical deserialization flaw allows an authenticated low-privilege domain user to execute arbitrary code on the Backup Server. This issue is network-reachable and requires...
CVE-2026-32999
Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices...
CVE-2026-32999
Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices...
CVE-2026-32999
Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices...
CVE-2026-32999
Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices...
Veeam Backup and Replication 12.x < 12.3.2.4465 Multiple Vulnerabilities (KB4830)
The version of Veeam Backup and Replication installed on the remote Windows host is 12.x prior to 12.3.2.4465. It is, therefore, affected by multiple vulnerabilities, including: - A vulnerability allowing an authenticated domain user to perform remote code execution RCE on the Backup Server...
CVE-2026-21669
A vulnerability allowing an authenticated domain user to perform remote code execution RCE on the Backup Server...
CVE-2026-21666
A vulnerability allowing an authenticated domain user to perform remote code execution RCE on the Backup Server...
CVE-2026-21667
A vulnerability allowing an authenticated domain user to perform remote code execution RCE on the Backup Server...
Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution
Veeam has released security updates to address multiple critical vulnerabilities in its Backup & Replication software that, if successfully exploited, could result in remote code execution. The vulnerabilities are as follows - CVE-2026-21666 CVSS score: 9.9 - A vulnerability that allows an...
EUVD-2026-11579
A vulnerability allowing an authenticated domain user to perform remote code execution RCE on the Backup Server...
EUVD-2026-11574
A vulnerability allowing an authenticated domain user to perform remote code execution RCE on the Backup Server...
EUVD-2026-11576
A vulnerability allowing an authenticated domain user to perform remote code execution RCE on the Backup Server...